WordPress 3.1 RC2 includes recent security fix
WordPress 3.1 RC2 has been released by the WordPress.org developers. It includes not only a number of fixes to the RC1 release from Christmas, but also includes the security fix that was incorporated in WordPress 3.0.4. This security fix closes a XSS hole which had been found in WordPress; the other changes include corrections for issues with static front page handling, pagination enhancements and fixed partial username searches. Details of the changes are available.
The WordPress developers encourage users and plugin developers to test the new release candidate, though use on live or production sites is not recommended. To test the WordPress 3.1 RC2, users can either download the release candidate (direct download) or use the WordPress Beta Tester Plugin and set the plugin to "bleeding edge nightlies". Any bugs or issues found during testing can be reported in the forums, mailing lists, over IRC on irc.freenode.net #wordpress-dev or directly into the WordPress Trac. Known issues are also listed on the WordPress Trac. WordPress is licensed under the GNU General Public License (GPL).